From Scandal to Standard-Bearer for Integrity – How Achieving ISO 37001 Certification Could Have Helped Avert Corporate Bribery Disasters

Brought to you by IBEC Intelligence

Organizations, especially those that have high visibility on the global stage do not intentionally attempt to engage in bribery.  When uncovered, instances of bribery lead to serious repercussions.  So, usually bribery in such organizations is not the result of special strategic meetings.  Rather, it starts almost accidentally with one person or instance, often unwittingly.  But bribery can be like an infection, and it can spread.  Then it leads to seriously undesirable fines, tarnished brand image, and undesirable publicity, among other things.

Unfortunately, bribery and corruption continue to plague global businesses, costing trillions of dollars annually and eroding public trust.  Several well-known organizations have been embroiled in major scandals that resulted in significant financial losses, reputational damage, and legal repercussions.  Most certainly attaining certification to the anti-bribery management system like ISO 37001 would have helped avoid such negative outcomes.  Below, we will share examples of a number of prominent organizations that have suffered from bribery-related scandals.

Siemens AG Got a $1.6 Billion Wake-Up Call – In 2008, German engineering giant Siemens AG faced a record $1.6 billion in fines to U.S. and European authorities for bribing officials worldwide to secure contracts.  The U.S. Securities and Exchange Commission (SEC) alleged that Siemens used slush funds, off-books accounts, and a network of consultants to funnel approximately $1.4 billion in bribes to government officials across Asia, Africa, Europe, the Middle East, and the Americas.  The total cost of the scandal reached €2.5 billion, including fines and fees.

Had Siemens AG achieved ISO 37001 Certification, it could have helped prevent this disastrous situation.  ISO 37001 requires organizations to implement an anti-bribery policy, conduct risk assessments, and establish strong financial controls.  Had Siemens implemented such a system, the widespread use of slush funds and third-party intermediaries for illicit payments might have been detected and prevented.  The standard also emphasizes leadership commitment and a culture of ethical conduct, which could have deterred the "system of organized irresponsibility," as The Guardia put it, that enabled the bribery scheme.

Walmart Got a $282 Million Lesson in FCPA Compliance – Retail giant Walmart faced scrutiny for alleged violations of the Foreign Corrupt Practices Act (FCPA) related to its operations in Brazil, China, India, and Mexico.  The company agreed to pay $282 million to settle charges that it made corrupt payments to government officials to expedite store openings.  Walmart's Brazilian subsidiary pleaded guilty to failing to keep accurate records of payments to an intermediary known as a "sorceress," who facilitated permit approvals.  In addition to the penalties, Walmart spent approximately $1 billion in legal fees and other costs related to the investigation.

Had Walmart had achieved ISO 37011 Certification at that time, it would have certainly helped.  ISO 37001 mandates due diligence on third parties and the implementation of anti-bribery controls in financial transactions.  By conducting thorough risk assessments and implementing proper oversight of its foreign subsidiaries, Walmart could have identified and mitigated the risks associated with using intermediaries to obtain permits.  The standard's emphasis on training and awareness programs could have also helped ensure that employees understood and complied with anti-bribery laws.

Petrobras Turned into a $2.1 Billion "Car Wash" – Brazilian state-controlled oil company Petrobras was at the center of a massive corruption scandal known as "Operation Car Wash," which involved bribery, bid-rigging, and kickbacks.  The scandal cost Petrobras an estimated $2.1 billion in losses, with allegations that 3% of each major contract was paid to politicians and executives between 2004 and 2012.  This massive scandal led to political unrest, economic decline, and a loss of investor confidence.

Having ISO 37001 Certification could have certainly helped Petrobras.  ISO 37001 requires organizations to establish clear policies and procedures to prevent and address bribery.  By implementing a robust ABMS, Petrobras could have created a culture of transparency and accountability that would have made it more difficult for the bribery scheme to flourish.  The standard's focus on continuous improvement could have also helped Petrobras identify and address weaknesses in its internal controls.

KBR, Inc. Reached a $402 Million Settlement – In 2009, KBR, Inc., a major engineering and construction firm, was implicated in a bribery scandal involving the construction of a liquefied natural gas plant in Nigeria.  The company and its joint venture partner were accused of paying approximately $180 million in bribes to Nigerian officials to secure contracts.  In 2017, KBR agreed to pay $402 million to settle charges brought by U.S. authorities related to violations of the FCPA.

Had KBR, Inc. earned ISO 37001 Certification, it would have served its purpose.  Implementing an anti-bribery management system could have enhanced KBR's due diligence processes for third-party contractors and suppliers.  By establishing clear policies and rigorous oversight, KBR might have prevented the illicit payments that led to the substantial financial penalties.

Eni S.p.A.: A $1.1 Billion Bribery Scandal – The Italian energy company Eni S.p.A. faced allegations of corruption related to its dealings in Nigeria.  In 2014, Eni was accused of paying $1.1 billion to secure rights to oil fields, with claims that a significant portion of this amount was funneled as bribes to government officials.  In 2021, the company faced a trial in Italy over these allegations, highlighting the ongoing scrutiny of its practices.

Eni could have benefited from achieving ISO 37001 Certification by implementing a transparent anti-bribery framework that included risk assessments, training for employees, and strict controls over financial transactions. Such measures could have helped the company avoid the pitfalls of corruption that led to legal action and reputational harm.

ISO 37001 Certification provides numerous benefits, including reduced bribery risk, improved legal compliance, enhanced reputation, as well as improved efficiency.

While attaining ISO 37001 certification is not a guarantee against bribery, it highlights the issue, increases organizational awareness, and demonstrates a commitment to ethical business practices.  Most importantly, ISO 37001 Certification provides a framework for preventing, detecting, and addressing bribery risks.  By achieving ISO 37001 Certification, your organization can significantly reduce its exposure to corruption and gain protection from the devastating consequences of bribery scandals.

Speak to our IBEC experts for guidance on how to gain ISO 37001 Certification